diff options
author | kali <kali@leap.se> | 2021-02-03 22:50:47 +0100 |
---|---|---|
committer | kali kaneko (leap communications) <kali@leap.se> | 2021-02-08 23:32:20 +0100 |
commit | ef7bfd3a013aae586bcb6b046de4c7f5a437bf8e (patch) | |
tree | 0d795ab3dc6e533a55954f69b7328a23f918717c /docs/build.osx.rst | |
parent | 44c69b1e73aa1d408f8b0567bd5d910728e31c3c (diff) |
[docs] document osx build process
Diffstat (limited to 'docs/build.osx.rst')
-rw-r--r-- | docs/build.osx.rst | 62 |
1 files changed, 62 insertions, 0 deletions
diff --git a/docs/build.osx.rst b/docs/build.osx.rst new file mode 100644 index 0000000..43d70ad --- /dev/null +++ b/docs/build.osx.rst @@ -0,0 +1,62 @@ +osx build +============= + +sign the release +------------------- + +in recent osx releases, it's not ok to just sign the insallers anymore. you +have to sign and then notarize with their service. here are some notes that use +ad-hoc targets in the main makefile, but we should keep an eye on any future +integration of this process in the more or less official Qt tools (QTIFW). + +First, we build the regular installer + +``` +make build +make installer +make sign_installer +``` + +Now we export the app-specific password and we proceed to notarization. If you +don't know what is this pass, you can create one in your Apple developer +account. Contact their friendly support for more info, but don't expect they +understand you do not really own any Apple Hardware. Sense of humor is not +universal. + +``` +export OSXAPPPASS=my-apple-app-pass +make notarize_installer +``` + +Between the output of the last command, you will get a Request UUID. You should pass that request uid in the appropriate +environment variable to check the status of the notarization process. Obviously, since the recent changes in Apple policies, +you need to be in posession of a valid membership + +``` +altool[5281:91963] No errors uploading 'build/installer/RiseupVPN-installer-0.20.4-175-gee4eb90.zip'. +RequestUUID = fe9a4324-bdcb-4c52-b857-f089dc904695 + +OSXMORDORUID=fe9a4324-bdcb-4c52-b857-f089dc904695 make notarize_check +xcrun altool --notarization-info fe9a4324-bdcb-4c52-b857-f089dc904695 -u "info@leap.se" -p nvaq-xdhq-wrho-ouuu +2020-12-11 22:21:59.940 altool[5787:96428] No errors getting notarization info. + + RequestUUID: fe9a4324-bdcb-4c52-b857-f089dc904695 + Date: 2020-12-11 21:13:10 +0000 + Status: success + LogFileURL: https://osxapps-ssl.itunes.apple.com/itunes-assets/Enigma114/v4/0f/c9/1e/0fc91e64-2c9f-74e5-3cf6-96b8f3bf7170/developer_log.json?accessKey=1607916119_6680812212684569509_nLlPw6tYxTSiWZfFTb0atP9zZ3CEGDfW0btWV51xhjWHiCFqBt%2BneXd5Vp40eQCSx8e1W5PYCIe2db7JGbhoTeJsYxl7UmYssRvYpTxYJl8z90uwB9jkbS1fsd7niaAn%2BQs7xHdv%2BB9jaKQI8LJ%2BwYY8RPq1QaeCJxBIdeG44DY%3D + Status Code: 0 +Status Message: Package Approved +``` + +If everything is ok, now you can finish the process, stapling the notarization info and creating the dmg. + +``` +make notarize_staple +make create_dmg +``` + +If everything went well, you should have a .dmg for your release under the `deploy` folder. + +``` +created: /Users/admin/leap/bitmask-vpn/deploy/RiseupVPN-0.20.4-175-gee4eb90.dmg +``` |